Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
File: zRQ2kCMKRApot6iqmCefL2Xf7ig.mft (raw, json)
Hash identifier: GvO7eqklG5ym5ratJJS+30HB1+Q9va5iOJrNLK6ycuE=
Subject key identifier: DD:93:7A:06:F5:C6:A0:9D:C6:E9:0B:DC:2E:F8:52:59:A4:AD:A0:8C
Authority key identifier: CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
Certificate issuer: /CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Certificate serial: 019510C6B0B1CAE9F8A355EE8C8508756629
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
Manifest number: 1158
Signing time: Sun 16 Feb 2025 22:00:11 +0000
Manifest this update: Sun 16 Feb 2025 22:00:11 +0000
Manifest next update: Mon 17 Feb 2025 22:00:11 +0000
Files and hashes: 1: vHQRV0jRUXExLLAYBdY2ODpzWoo.roa (hash: 7UhAMCr3OjHllJdnfdmjdJInrKVauXU3M4e5nn0fWuA=)
2: zRQ2kCMKRApot6iqmCefL2Xf7ig.crl (hash: HCFsThhBeH74+PgDr6j7zP0whN9fc0OZPyEYxEtiXCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:b0:b1:ca:e9:f8:a3:55:ee:8c:85:08:75:66:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Validity
Not Before: Feb 16 22:00:11 2025 GMT
Not After : Feb 17 22:00:11 2025 GMT
Subject: CN=dd937a06f5c6a09dc6e90bdc2ef85259a4ada08c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a8:ee:d4:08:74:5d:59:7d:1c:3d:85:a6:53:
ef:1d:f1:cc:b0:ce:2f:cb:bb:6b:49:26:0d:37:ee:
fe:17:50:c5:78:f6:d3:9a:41:78:b2:97:71:d2:98:
86:e7:e4:97:d2:96:f2:80:db:68:e2:27:10:93:81:
33:1b:ce:89:27:ff:6d:41:95:b4:60:81:46:e9:7b:
75:88:14:68:7e:66:01:de:39:c7:21:97:66:ac:67:
48:16:85:72:db:b0:a7:3d:f8:68:38:a8:b1:f7:bb:
79:57:8e:e3:a9:03:e1:a5:80:a7:47:30:f3:a2:4f:
03:c1:f8:24:b0:81:3c:06:9b:c4:7d:5b:bb:b3:26:
e1:97:65:b7:ff:e0:06:4b:c8:40:20:91:41:c8:f1:
70:89:cf:f6:e1:27:88:a9:64:71:65:0c:85:b4:2a:
2e:35:d3:d9:f7:ae:7d:75:06:de:af:90:49:65:54:
69:a3:c7:11:db:cb:66:0a:e3:b2:b1:59:9c:46:cc:
73:96:9d:47:8b:22:69:77:c1:56:3c:8c:e0:79:39:
5c:64:aa:8c:15:d1:65:d9:7d:b2:30:7f:d2:d9:f2:
55:b7:88:a1:2f:33:14:a7:05:12:67:66:bc:fe:37:
c2:52:80:59:c3:cc:6d:09:e1:04:5b:00:b4:b4:8b:
19:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:93:7A:06:F5:C6:A0:9D:C6:E9:0B:DC:2E:F8:52:59:A4:AD:A0:8C
X509v3 Authority Key Identifier:
keyid:CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:af:95:72:cc:41:19:6e:8d:9c:df:dd:86:69:e8:f0:2d:ef:
71:19:a0:98:32:92:f8:3b:83:4a:76:91:61:4a:53:31:e3:1d:
90:bb:7d:bc:38:1c:95:dd:3e:ae:73:80:3f:2e:a3:2a:61:69:
bc:8f:42:0d:31:f7:6c:4d:f9:04:fd:c0:dc:cb:22:ff:e7:9d:
02:80:ed:58:e6:fe:af:59:96:7d:28:d3:d8:bb:a3:d1:c0:96:
48:c2:f5:01:91:6d:48:6e:89:c1:13:05:32:61:8e:4b:b7:db:
c3:ed:55:9c:5f:6c:67:08:6a:c4:6a:88:21:d9:e5:d2:80:0e:
b8:59:57:60:06:e7:b3:ea:c0:03:25:e0:61:6f:50:0e:1b:9a:
a6:5c:13:c9:93:18:8d:32:1b:51:28:be:50:7e:11:5b:f5:45:
86:13:b0:55:67:fd:2d:4b:bb:ac:6c:66:13:af:32:9f:3a:9b:
3a:e2:4b:6e:3d:58:ef:16:79:d4:66:05:61:6e:bb:d1:65:aa:
a7:02:14:b2:1c:fb:88:d6:bd:cd:33:0c:18:11:f9:09:36:7a:
2e:c1:14:ca:7b:50:bc:1c:bc:cb:2a:f0:18:10:b1:1a:31:f1:
0e:3e:4a:a3:5e:08:7c:8c:32:00:ba:53:22:c8:1d:82:5d:9a:
37:a7:9b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:36 2025 by rpki-client